Stored Cross-Site Scripting Vulnerability in User Profile Builder by WordPress
CVE-2025-2314

6.4MEDIUM

Key Information:

Vendor: Cozmoslabs
Status: User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor
Vendor: CVE Published:; 16 April 2025

Summary

The User Profile Builder plugin for WordPress is exposed to a Stored Cross-Site Scripting vulnerability due to inadequate sanitization and escaping of user-supplied attributes in its shortcodes. This susceptibility permits authenticated users with contributor-level privileges and higher to inject malicious web scripts into pages. When these modified pages are accessed by other users, the injected scripts can execute, leading to potential unauthorized actions or data exposure. A partial patch was introduced in version 3.13.6, with a complete fix rolling out in version 3.13.7.

Affected Version(s)

User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor * <= 3.13.6

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/profile-builde...

https://plugins.trac.wordpress.org/changeset/3268402/

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Apr 16, 2025
Vulnerability Reserved
Mar 14, 2025

Credit

muhammad yudha